Browsing of published applications from WAN (Custom ICA connection)

Citrix Experts,

I need some firewall help regarding the following problem.

What port needs to be open to the Citrix Server which handles the published applications in order for me to browse the available application from the WAN side?

Everything works just fine on the LAN  (from a client on the LAN to the Server)  but not from the WAN. I do have currently only port 1494 open.

Thanks for your help.
TLANGIAsked:
Who is Participating?
 
BLipmanConnect With a Mentor Commented:
If you find your farm with the TCP/IP + http option you would need to specify port 80.  It fails over to broadcast anyway so it will work if you don't specify but find things slower.  Do a telnet "serverIP" 80 to your Citrix box; the XML service will respond and connect you (do this over the LAN and you will see what I am saying).  Once you do that, pop open 80 to the server and try from the WAN...it will work.  
0
 
BLipmanCommented:
Your XML port; this can be port 80 but I often see people change it to something like 8080 or 1818.  You can check this from the properties of your server.  
0
 
TLANGIAuthor Commented:
I am sharing the XML service with IIS. There is no separate port specified.
Why would I be able to access (browse) the published appl. locally but not from the WAN.
I can also access the published application via Web access from the WAN but just not via Neighborhood client setup from the WAN.
0
Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

 
BLipmanCommented:
Use port 80, that's what share w/ IIS means.  You can get the browse list on a LAN via broadcast.
0
 
BLipmanCommented:
Your next question may be something like this: but I don't want to open 80 to my server, it is on my LAN and 80 is not safe; that's what the DMZ is for.  I will then tell you "that's what Secure Gateway is for, and it comes with every version of Presentation Server, FREE).  
0
 
TLANGIAuthor Commented:
How is the successful telnet command response supposed to look like?
Port 80 is open due to the fact the Citrix Web access is listening on it.
0
 
TLANGIAuthor Commented:
This is the error I am getting from the WAN side:
---------------------------
Citrix Program Neighborhood
---------------------------
The ICA browser did not return any server names. You can enter server addresses in the Address List for the application set if there are no Citrix Presentation Server computers in your local subnet.

It is not a DNS issue due to the fact that FQDN and IP attempts bring the same result.

By the way, thanks you so far !

0
 
TLANGIAuthor Commented:
Found the answer. Of course a silly one. The default browser list was not defined on the remote client from which I tried to browse the published applications.
Thanks though.
0
 
BLipmanCommented:
If you set up an application set and use TCP/IP +HTTP it should ask for the Server Location, you just add in your DNS name or IP and should be able to pick your farm from the dropdown.  Glad you got it running.
0
 
TLANGIAuthor Commented:
Yes, that was what I assume and what did work in the LAN but not WAN sided and therefore I struggled. Thanks for all the support !
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.